MCSE

Course Overview

The purpose of this course is to focus on delivering the skills and knowledge necessary to analyze the business requirements, and design and implement the infrastructure for business solutions based on the Microsoft Windows® Server 2003 platform and Microsoft server software. Through hands-on learning which simulates real world situations, the student will have the ability to utilize and enhance his or her skill set.

The student will develop a practical understanding of the operations of installing, configuring, supporting and troubleshooting a network infrastructure using Microsoft Windows 2003 server, gain skills needed to create a networking services infrastructure design, understand the strategies needed to design an Active Directory structure and build the knowledge and skills necessary to install, configure, administer, and support the services and tools with Microsoft Windows Exchange Server 2007.

Upon completion of this course, a student will be prepared to take the seven exams necessary to become a Microsoft Certified Systems Engineer.

The technology community identifies the Microsoft Certified System Engineer (MCSE) credential as a premier certification for professionals who analyze the business requirements for system architecture, design solutions, deploy, install, and configure architecture components, and troubleshoot system problems.

 

 

Course Outline

Microsoft Windows Vista Configuration

                       
100 Hours

Introducing Windows Vista
Installing Windows Vista
Configuring System Settings
Working with Disks
Working with Users and Groups
Working with Drivers and Printers
Configuring Network Connectivity
Configuring Windows Vista Security
Configuring Windows Vista Applications
Optimizing Windows Vista Performance
Troubleshooting Windows Vista
Working with Mobile Computers

 

Managing and Maintaining a Microsoft Server 2003 Environment Package

80 Hours

Introducing Microsoft Windows Server 2003
Administering Microsoft Windows Server 2003
Monitoring Microsoft Windows Server 2003
Backing Up and Restoring Data
Maintaining the Operating System
Working with User Accounts
Working with Groups
Working with Computer Accounts
Sharing File System Resources
Working with Printers
Managing Device Drivers
Managing Disk Storage

Implementing, Managing, and Maintaining a Microsoft Server 2003 Network Infrastructure

80 Hours

Implementing DHCP
Managing and Monitoring DHCP
Implementing Name Resolution Using DNS
Managing and Monitoring DNS
Network Security
Securing Network Traffic with IPSec
Implementing and Managing Software Update Services
Configuring Routing by Using Routing and Remote Access
Maintaining a Network Infrastructure

Microsoft Exchange Server 2007 Configuration

80 Hours

Exchange Server 2007 Basics
Working with Active Directory
Deploying Exchange Server 2007
Configuring a New Exchange Server
Working with Recipient Objects
Address Lists, Policies, and Bulk Management
Working with Public Folders
Configuring Email Protocols and Transport Rules
Configuring Security
Backing Up, Restoring, and Repairing Exchange
Monitoring Exchange
Providing for Mobile Access and Unified Messaging
Providing for High Availability

Planning and Maintaining Microsoft Server 2003 Network Infrastructure Package

80 Hours

Introduction to Network Infrastructure Administration
Assigning IP Addresses
Routing IP
Planning a Name Resolution Strategy
Connecting to the Internet
Server Clustering
Securing a Network Infrastructure
Hardening Servers
Designing a Public Key Infrastructure
Securing Network Communication
Maintaining a Network Infrastructure
Troubleshooting

Planning, Implementing, and Maintaining a Server 2003 Active Directory Infrastructure

80 Hours

Overview of Active Directory
Implementing Active Directory
Working with Active Directory Sites
Global Catalog and Flexible Single Master Operations (FSMO) Roles
Active Directory Administration
Security Planning and Administrative Delegation
Introduction to Group Policy
Configuring the User and Computer Environment Using Group Policy
Managing Software
Planning a Group Policy Management and Implementation Strategy
Active Directory Maintenance, Troubleshooting, and Disaster Recovery
Upgrading and Migrating to Windows Server 2003

Designing Security for a Microsoft Server 2003 Network Package

80 Hours

Assessing the Need for Security
Analyzing Risk
Reducing the Risk of Software Vulnerabilities
Designing a Management Infrastructure
Designing Active Directory Security
Protecting Data
Hardening Services
Hardening Client Computers
Designing a Public Key Infrastructure
Protecting Intranet Communications
Protecting Extranet Communications
Hardening Web Servers
Creating a Disaster Recovery Plan

 

 

 

Course Objectives

Microsoft Windows Vista Configuration

• Understand Windows Vista system requirements
• Run the Upgrade Advisor
• Use the Windows Vista interface
• Perform a clean installation
• Migrate to Windows Vista
• Identify upgrade paths
• Upgrade to Windows Vista
• Prepare to upgrade
• Upgrade from Windows XP
• Upgrade Vista editions
• Perform a dual boot installation
• Configure Windows Sidebar
• Introduce Windows Aero
• Understand Windows Aero hardware requirements
• Troubleshoot video adapter issues
• Validate Windows
• Run the System Performance Rating Tool
• Update display drivers
• Enable Aero display settings
• Configure Data Protection
• Use the Backup Files Wizard
• Use Complete PC
• Restore previous versions
• Introduce User Account Control
• Understand User Account Control
• Understand recommended UAC practices
• Perform administrative tasks with a standard user account
• Configure User Account Control
• Understand drivers and devices
• Update drivers with Windows Update
• Use Device Manager
• Update drivers
• Use the Network and Sharing Center
• Understand Network Discovery
• Run network diagnostics
• Manage local area network connections
• Create a new network connection
• Configure Windows Firewall settings
• Configure exceptions and ports
• Introduce Windows Defender
• Configure Windows Defender
• Use Software Explorer
• Update definitions
• Set up users
• Set up parental controls
• Configure Internet Explorer 7
• Configure RSS feeds
• Configure feed subscriptions
• Configure search options
• Print with IE7
• Secure Internet Explorer 7
• Resolve protected mode incompatibilities
• Configure the phishing filter
• Configure the pop-up blocker
• Configure security zones
• Configure privacy settings
• Manage add-ons
• Use Windows Mail
• Configure the Inbox
• Use Windows Contacts
• Use newsgroups
• Use Windows Meeting Space
• Use Windows Calendar
• Use Windows Fax and Scan
• Work with media applications
• Use the Windows Update Client
• Apply updates
• Use Event Viewer
• Use Performance Information and Tools
• Introduce ReadyBoost
• Use ReadyBoost
• Use Reliability Monitor
• Use the Reliability and Performance Monitor console
• Understand troubleshooting practices
• Use troubleshooting tools
• Use remote access technologies
• Troubleshoot installation and startup issues
• Configure Windows Vista wireless networking
• Configure mobile display options
• Configure power options
• Synchronize data
• Configure tablet PC features

Managing and Maintaining a Microsoft Server 2003 Environment Package

• Understand the different features and capabilities of the four versions of the Windows Server 2003 family
• Install and perform basic configurations of Windows Server 2003
• Explain the Windows Product Activation process for Windows Server 2003
• Discuss the various roles and services that a Windows Server 2003 server can perform
• Understand the Active Directory service
• Install and configure Active Directory and the Domain Name System (DNS) service
• Explain the Active Directory structure of containers, objects, and attributes
• Understand group policies
• Use a preconfigured Microsoft Management Console (MMC)
• Understand the MMC interface
• Create a new MMC
• Understand snap-in types and how to add them to the MMC
• Understand the four console options
• Save MMC consoles
• Administer both local and remote computers using an MMC console
• Manage servers with Remote Desktop
• Enable Remote Desktop on a server
• Install and configure Remote Desktop connections
• Troubleshoot Terminal Services
• Configure and enable Remote Assistance
• Use one of the available methods to invite an expert to assist
• Secure Remote Assistance
• Understand the two types of monitoring, real time and logged
• Understand the four subsystems of Windows Server 2003
• Establish a performance baseline
• Configure and use Event Viewer
• Understand the different types of events that can be recorded
• Configure Task Manager
• Use Task Manager to monitor server performance
• Use Task Manager to monitor network activity
• Configure and use the Performance console
• Configure and use System Monitor
• Add counters to System Monitor
• Save a System Monitor console for future use
• Monitor server performance and determine system bottlenecks
• Monitor processor performance using System Monitor
• Monitor memory performance using System Monitor
• Monitor disk performance using System Monitor
• Monitor network performance using System Monitor
• Use Performance Logs and Alerts
• Describe the various types of hardware used to perform backups
• Understand the capabilities of network backup software products
• Understand the difference between full, incremental, and differential backup jobs
• List the capabilities of the Microsoft Windows Server 2003 Backup program
• Back up and restore an Active Directory database
• Use volume shadow copies
• Identify and explain the similarities and differences between service packs and hotfixes
• Identify the different approaches to updating both networked and standalone computers
• Identify the importance of testing all updates before they are deployed on a wide scale
• Describe the importance of backing up a configuration before applying service packs
• Use both the graphical and command-line interface (CLI) versions of Microsoft Baseline Security Analyzer (MBSA) to detect potential security lapses and missing security updates
• Discuss the function and considerations of using Windows Update for Microsoft Windows Server 2003 and earlier Microsoft operating systems
• Install service packs and hotfixes manually
• Use slipstreaming, group policy, and Software Update Services (SUS) to automate the installation of service packs
• Install and configure SUS to deploy updates and service packs on a network
• Design and build an SUS topology
• Monitor and troubleshoot SUS
• Configure, administer, and manage software licensing
• Understand the difference between local user accounts and domain user accounts
• Plan user account creation
• Create and manage local user accounts
• Create and manage domain user accounts
• Create and manage user accounts with templates, importation, and command-line tools
• Mange user profiles
• Understand the differences between local, roaming, and mandatory profiles
• Troubleshoot user authentication issues
• Understand the function and purpose of groups
• Understand how domain functional levels affect groups
• Understand and be able to create and manage local groups
• Understand and be able to create and manage global groups
• Understand and be able to create and manage groups within Active Directory
• Understand and be able to create and manage security groups
• Understand and be able to create and manage distribution groups
• Understand group scopes, domain local, global, and universal
• Understand group nesting
• Identify the predefined and built-in groups in Microsoft Windows Server 2003
• Understand the difference between groups and special identities
• Describe the process of adding a computer to an Active Directory domain
• Create and manage computer objects
• Troubleshoot computer accounts

• Understand and be able to assign permission to a shared resource
• Understand access control lists (ACLs)
• Understand permission inheritance
• Understand effective permissions
• Create and manage file system shares using Windows Explorer
• Understand, manage, and create administrative shares
• Create file system shares using the Shared Folder snap-in
• Create a shared folder using Net.exe
• Understand how to control offline storage
• Publish a share in Active Directory
• Understand and be able to assign NTFS standard and special permissions
• View effective NTFS permissions
• Install and administer IIS
• Create virtual directories in IIS
• Configure IIS Security

• Understand the model and terminology used in Windows printing
• Install a logical printer on a print server
• Prepare a print server to host clients
• Connect a printer client to a logical printer on a print server
• Manage print queues and printer properties
• Troubleshoot printer failures
• Understand hardware devices and device drivers
• Understand hardware resources
• Understand how Plug and Play (PnP) works
• Install a PnP device
• Install a non-PnP device
• Use Device Manager
• Understand driver signing
• Use the Add Hardware Wizard
• Enable, disable, and uninstall a device
• Use driver rollback
• Manage hardware using Control Panel
• Troubleshoot hardware devices and device drivers
• Understand and use hardware disaster recovery tools
• Understand disk storage concepts and terminology
• Distinguish between basic and dynamic storage
• Identify the types of storage volumes supported on Windows Server 2003 managed disks
• Identify the best RAID implementation given a particular storage requirement, in terms of capacity utilization, fault tolerance, and performance
• Add storage to a Windows Server 2003 computer
• Manage disks using Check Disk, Disk Defragmenter, and disk quotas

Implementing, Managing, and Maintaining a Microsoft Server 2003 Network Infrastructure

• Understand the purpose of Dynamic Host Configuration Protocol (DHCP)
• Understand how DHCP functions
• Understand the DHCP lease process
• Understand the DHCP lease renewal process
• Understand the purpose of authorizing DHCP servers in Active Directory
• Authorize a DHCP server in Active Directory
• Understand the purpose of multicasting
• Install the DHCP server service
• Configure DHCP scopes and superscopes
• Configure DHCP client reservations
• Configure DHCP exclusion ranges
• Configure DHCP scope options
• Understand and configure the DHCP relay agent
• Understand and configure Alternate Configuration
• Understand Domain Naming System (DNS) dynamic updates
• Configure DNS dynamic update settings on a DHCP server
• Understand the DnsUpdateProxy security group
• Troubleshoot dynamic updates
• Understand the DHCP automatic backup and restore process
• Understand the DHCP manual backup and restore process
• Backup and restore a DHCP database
• Reconcile a DHPC database
• Compact a DHCP database
• Enable server based conflict detection
• Establish a performance baseline for monitoring a DHCP server
• Use the DHCP audit log
• Use the Performance console to monitor DHCP
• Understand Automatic IP Addressing (APIPA)
• Disable APIPA
• Troubleshoot APIPA
• Describe the process of name resolution and why it is important to your organization.
• Install and configure the Domain Name System (DNS).
• Describe and configure primary zones, secondary zones, in-addr.arpa zones, and stub zones.
• Create an Active Directory-integrated zone, and explain the benefits of doing so.
• Describe the different types of DNS servers and the functions they perform.
• Explain the benefits of delegating a zone, and create a delegated zone.
• Describe the process of a zone transfer.
• Use management tools to configure the Domain Name Service (DNS) including Nslookup, DNSLint, and Dnscmd.
• Define DNS and Windows Internet Naming Service (WINS) integration and explain how host names and the Network Basic Input/Output System (NetBIOS) names fit into DNS and WINS integration.
• Configure options available on the Advanced tab of the DNS server Properties dialog box.
• Explain how outdated resource records are aged and scavenged, and initiate the aging and scavenging process.
• Display and purge the DNS resolver cache.
• Secure DNS objects in Active Directory directory service.
• Use the Event Log, DNS debug log, and Active Directory replication monitor to monitor and troubleshoot DNS.
• Describe network security protocols and the function of each
• Describe the function of user rights and permissions
• Discuss the differences between user rights and permissions
• List common user rights and the default rights assigned to local groups
• Assign user rights to a computer using group policies
• Create security baselines
• Configure, view, and maintain the security log
• Apply the principle of least privilege
• Discuss the guidelines for applying the principle of least privilege
• Use the secondary logon service to perform administrative functions
• Configure and apply security templates to enhance system security using local computer policy and group policies
• Discuss and use predefined security templates
• Describe EFS (Encrypting File System)
• Use Cipher and file/folder properties to encrypt and decrypt files & folders
• Create and use an EFS recovery policy
• Use the Security Configuration and Analysis snap-in to verify and configure computer settings
• Use Secedit to configure, refresh, and analyze system security
• Use Gpupdate to refresh security settings on a computer system
• Us Microsoft Baseline Security Analyzer (MBSA) to check security settings
• Describe the purpose of IPSec
• List the different types of security attacks that IPSec can help to protect against
• Identify and explain the major components of IPSec
• Describe how IPSec protects against security attacks
• List and describe IPSec security features
• List and describe the new IPSec features found in Windows Server 2003
• List and describe two IPSec modes
• Describe the function of security associations
• Describe Internet Security Association and Key Management Protocol (ISAKMP) security associations
• Describe IPSec security associations
• Describe a security parameter index
• Describe the purpose of Internet Key Exchange (IKE) and how it is used in IPSec
• Describe the purpose of the IPSec Policy Agent Service in Windows Server 2003
• Describe the responsibilities of the IPSec Policy Agent Service in Windows Server 2003
• Describe the purpose and the role of the IPSec driver
• List the steps of the security negotiation process
• List and describe the two security negotiation modes
• Describe the purpose of IPSec security policies
• List and describe the components of an IPSec policy
• Deploy an IPSec policy using local computer policies and using Group Policy
• Configure IPSec to use X.509 certificates
• Understand how IPSec can be used with Windows Server 2003 Network Address Translation (NAT)
• Describe the components of IP Security Monitor
• Use IP Security Monitor to monitor IPSec traffic
• Use Resultant Set of Policies (RSoP) to determine what IPSec policies have been assigned
• Use Event Viewer to view IPsec related events
• Use the Oakley Log to view IPSec information
• Use Netsh to view, monitor, and configure IPSec policies
• Use the Show command to view IPSec information
• Understand and configure Windows Update
• Understand and configure Automatic Updates
• Understand how Software Update Services works
• Install and configure Software Update Services (SUS)
• Understand SUS distribution points
• Manage a SUS Server
• Manage SUS clients
• Monitor a SUS server

• Configure a Microsoft Windows Server 2003 to act as a router
• Understand remote access options with Windows Server 2003
• Configure and troubleshoot dial-up connections
• Configure and troubleshoot Virtual Private Network (VPN) connections
• Understand Network Address Translation (NAT)
• Understand static routes and routing protocols
• Understand and manage a routing table
• Understand and create packet filters
• Understand and configure demand dial routing
• Configure dial-in properties on user accounts
• Understand and configure remote access policies
• Understand network access authentication methods

• Describe the similarities and differences between a reactive and a proactive approach to maintaining an operating system
• Monitor network activity using the Networking tab in Task Manager
• Describe filtering
• Filter network traffic statistics in Task Manager
• Select columns to view in Task Manager
• Explain the purpose of using the Performance console
• Add network counters to the Performance console
• Monitor network traffic using the Performance console
• Create and configure alerts using the Performance console
• Monitor network traffic using Netstat
• Explain the purpose of Windows Server 2003 Network Monitor
• Install Windows Server 2003 Network Monitor
• Monitor traffic Windows Server 2003 Network Monitor
• Create and configure Network Monitor triggers
• Troubleshoot Internet connectivity
• Identify connectivity issues using ipconfig, ping, pathping, and nslookup
• Test DNS name resolution using the DNS Server Monitoring tab
• Use the Repair feature of Windows Server 2003
• Verify the DHCP server
• Bridge multiple networks
• Use Netdiag to perform diagnostic tests
• Determine server dependencies
• Configure service startup options
• Discuss and configure service recovery options
• View the system event log to locate system events
• Configure service logon account settings

Microsoft Exchange Server 2007 Configuration

• Identify the purpose and usage of Exchange Server 2007
• Describe standard email terminology
• Understand email relay and DNS MX record usage
• Explain the various types and uses of email protocols
• Identify previous versions of Exchange Server and their features
• List the new features introduced in Exchange Server 2007
• Describe the function and usage of Exchange Server 2007 server roles
• Describe the purpose and function of Active Directory
• Understand the structure of Active Directory
• Understand the function of groups, functional levels, sites, global catalog, and FSMO roles in an Active Directory environment
• Raise domain and forest functional levels
• Configure Active Directory sites
• Administer FSMOs, global catalog, and Trusts
• Create and manage OU, user, group, and computer objects
• Configure GPOs
• Meet Active Directory Requirements
• Prepare Legacy Exchange Servers
• Meet Hardware Requirements
• Meet Software Requirements
• Perform a Graphical Installation
• Perform an Unattended Installation
• Finalize the Installation
• Configure the Hub Role
• Configure the Edge Role
• Configure the Mailbox Role
• Configure the CAS Role
• Configure Receive Connectors
• Configure Send Connectors
• Configure Microsoft Outlook
• Configure Microsoft Entourage
• Configure Microsoft Outlook Express and Windows Mail
• Work with Mailbox Users
• Work with Mail Users and Mail Contacts
• Implement an Exchange Resource Forest
• Work with Mail-Enabled Groups
• Work with Resource Mailboxes
• Move Mailboxes
• Configure Resource Booking Policies
• Work with Multiple Recipient Objects
• Configure Message Compliance Policies
• Configure Policies
• Create Public Folders
• Configure Public Folders
• Configure Mail-Enabled Public Folders
• Work with Multiple Public Folders
• Configure Transport Rules
• Configure Client Access Protocols
• Configure the SMTP Protocol
• Protect against Viruses and Spam
• Back Up Exchange Databases
• Back Up Exchange Server Role Configuration
• Restore Exchange Databases
• Restore Mailboxes and Deleted Items
• Perform Dial Tone Recovery
• Restore Exchange Server Role
• Monitor Email Queues
• Monitor System Performance
• Track Messages
• Monitor Client Connectivity
• Create Server Reports
• Create Usage Reports
• Configure Unified Messaging Support
• Create and Apply ActiveSync Policies
• Configure a UM Mailbox Policy
• Provide High Availability for Mailbox Role Servers
• Provide High Availability for Nonmailbox Role Servers

Planning and Maintaining Microsoft Server 2003 Network Infrastructure Package

• Describe and discuss the network infrastructure design processes
• Explain physical infrastructure and its components
• Explain logical infrastructure and its components
• Determine the requirements for a particular network environment
• Discuss network infrastructure implementation concepts and components
• Discuss network infrastructure design security concerns
• Determine and discuss security requirements for a network infrastructure
• List and explain the three basic phases of a security life cycle
• List and explain the tasks involved in maintaining a network infrastructure
• List and explain the seven layers of the Open System Interconnection (OSI) model
• List and explain network topologies including Ethernet and Token Ring
• Discuss and explain different types of network cabling characteristics
• Discuss and explain wireless networking
• Explain ad-hoc and infrastructure modes of wireless networking
• Select the appropriate data-link and network/transport layer protocols for a given network environment
• Plan locations for workstations, peripherals, cables, connectivity devices, and servers on your network
• Define the term IP address.
• Define the term octet.
• Define the term host.
• Define the term network.
• Identify and explain IP address components.
• Define the term subnet mask.
• Explain the function of a subnet mask.
• List and explain each of the three basic classes of IP addresses.
• Explain the IP address 127.0.0.1 and why it is used.
• Explain the differences between a private and a public network.
• Define the term registered IP addresses.
• Explain why you would use a registered IP address.
• Define the term unregistered IP addresses.
• Explain why private IP addresses cannot access the Internet.
• Identify the private IP address ranges.
• Plan IP addresses for a network.
• Calculate a network’s IP addresses, subnet masks, and default gateway address.
• Convert binary numbers to decimal numbers.
• Calculate IP addresses using the binary method.
• Calculate IP addresses using the subtraction method.
• Configure IP addressing information manually.
• Configure an answer file with IP addressing information.
• List and explain the three methods of Dynamic Host Configuration Protocol (DHCP) IP address allocation.
• Configure IP addressing information using DHCP.
• Install the DHCP Server service on a Microsoft Windows Server 2003 computer.
• List and explain the four steps of DHCP client and DHCP server communications.
• Assess the number of DHCP servers needed on a network.
• Define the DHCP relay agent.
• Deploy single and multiple DHCP servers on a network.
• Explain the functions of a router
• Develop an IP routing plan for a network
• Describe and discuss a routing table
• Explain the three alternatives when a router makes a routing decision
• Explain the purpose of a broadcast domain
• Explain the purpose of a collision domain
• Explain the purpose of local area network (LAN) routing
• Explain the purpose of wide area network (WAN) routing
• Describe a scenario in which routers are used to connect a LAN to a WAN
• Choose the appropriate WAN topology
• Choose the appropriate WAN technology
• Explain multicasting
• Explain router multicasting support
• Explain the function of a switch
• Describe the similarities and differences between a hub and a switch
• Explain the function and purpose of a virtual LAN (VLAN)
• Explain how Microsoft Windows Server 2003 can be used as a router to connect multiple LANs
• Explain how Windows Server 2003 can be used as a router to connect a LAN to the Internet
• Explain and describe the advantages and disadvantages of different types of software and hardware routers
• Explain and demonstrate the routing table on a Windows Server 2003 computer
• List and explain the two methods that a router uses to obtain routing information
• Explain the advantages and disadvantages of static routing
• Explain the advantages and disadvantages of dynamic routing
• Decide whether to use static routing or dynamic routing on your network
• Define and explain the Routing Information Protocol (RIP)
• Define and explain Open Shortest Path First (OSPF)
• Discuss the advantages and disadvantages of using a distance vector routing protocol for routing
• Discuss the advantages and disadvantages of using a link state routing protocol for routing
• Explain how RIP routers communicate on a network
• Explain how OSPF enables routers to communicate on a network
• Decide whether to use RIP or OSPF for dynamic routing
• Explain and describe what functions Windows Server 2003 Routing and Remote Access can perform

• Explain and discuss the process of both types of name resolution
• Explain and compare host names and NetBIOS names
• Explain and discuss the hosts and lmhosts files
• Discuss the DNS namespace and how host names are resolved
• Explain a DNS domain
• List and describe DNS resource records
• Describe the DNS architecture and hierarchy
• Explain the process of host name resolution
• Define DNS query types
• Discuss reverse lookup zones
• Explain resolving Internet names
• Discuss hosting and Internet domains
• Discuss DNS and Active Directory integration
• Design an effective DNS namespace for a given network environment
• List and describe the strategies for combining internal and external domains
• Explain subdomains
• Explain the function of a DNS internal root
• List and explain reasons for deploying multiple DNS servers on a network
• List and explain DNS server types
• List and explain the different DNS zone types
• List and explain the different types of DNS zone transfers
• List the advantages and disadvantages of Active Directory–integrated zones
• Explain delegating zones
• Explain how to secure DNS
• Discuss and explain the NetBIOS name resolution process

• List and describe the different NetBIOS name resolution methods

• List and describe the different NetBIOS node types
• Explain how WINS provides name resolution on a network
• Explain WINS replication
• List and discuss the three major components necessary to be able to connect to the Internet
• List and describe the different types of Internet access routers
• List and describe each of the various types of Internet access WAN technologies
• List the advantages and disadvantages of the different types of Internet access WAN technologies
• Explain the roles and functions of an Internet service provider (ISP)
• List and explain each of the factors for Internet connectivity
• Explain the factors to consider when securing Internet access
• Explain the methods of securing Internet access
• Explain the advantages and disadvantages of using registered IP addresses for internal client computers
• Explain regulating Internet access for users
• Discuss NAT and how it can be used to allow Internet connectivity
• List and explain the three types of NAT
• Explain NAT security
• Explain packet inspection
• Explain port forwarding
• Discuss using a proxy server and how it can be used to allow Internet connectivity
• Discuss Microsoft Internet Security and Acceleration (ISA) Server 2000
• Select a method of Internet access for a given network environment
• List the types of server clusters
• Determine which type of cluster to use for their applications
• Describe how Network Load Balancing (NLB) and server clusters work
• Deploy an NLB cluster
• Deploy a server cluster
• List the criteria for selecting operating systems for network servers and workstations
• List the default security settings for the Microsoft Windows Server 2003 and Microsoft Windows XP Professional operating systems
• Describe the problems inherent in keeping the software on a large network installation updated
• Use Microsoft Baseline Security Analyzer (MBSA)
• Use Microsoft Software Update Services (SUS)
• Describe the security problems inherent in wireless networking
• List the mechanisms that Windows-based IEEE 802.11 wireless LANs (WLANs) can use to authenticate clients and encrypt transmitted data
• Determine the security requirements of your remote access installation
• Control remote access with user account properties
• Create remote access policies
• Understand group policy objects (GPOs)
• Understand group policy inheritance
• Create a security baseline for member servers
• Understand container objects
• Set audit policies
• Set Event Log policies
• Configure services
• Configure security options
• Understand and configure role-specific servers
• Secure domain controllers
• Secure infrastructure servers
• Secure file and print servers
• Configure and deploy role specific GPOs
• Understand how to combine GPO policies
• Understand and configure security templates
• Configure the supplied security templates
• Deploy security templates using group policy
• Use the Security Configuration and Analysis tool
• Understand and use Secedit.exe
• Understand the components of a public key infrastructure (PKI)
• Understand the components of a certificate
• Understand the function of a digital certificate
• Understand the function of a certificate authority (CA)
• Understand secret key encryption
• Understand the difference between an internal CA and an external CA
• Understand how to determine client security needs
• Plan and design a PKI infrastructure to meet client security needs
• Understand a CA hierarchy
• Understand the CA types supported by Microsoft Windows Server 2003
• Understand how to use Windows Server 2003 to configure certificates
• Install and configure Certificate Services
• Understand the certificate enrollment process
• Publish a certificate revocation list (CRL)
• Use the auto enrollment feature in Windows Server 2003
• Manually enroll certificates in Windows Sever 2003
• Use the Certificates snap-in to manually request a certificate
• Use Web enrollment
• Understand certificate revocation
• Describe the function and usefulness of packet filtering
• List the well-known port numbers used by common applications and services
• List the criteria you can use to filter network traffic
• Describe the packet filtering functionality included in Microsoft Windows Server 2003
• List the major threats to network communications
• Describe the functions of IPSec
• Understand the functions and architecture of the IPSec protocols
• List the components of a Windows Server 2003 IPSec implementation
• List the default IPSec policies included with Windows Server 2003 and their applications
• Understand the functions of an IPSec policy’s components
• Use the IP Security Policies snap-in to manage IPSec policies
• Explain the function of the Performance console
• Explain the function of performance object counters in System Monitor
• List the tasks that can be performed using performance object counters in System Monitor
• Explain a System Monitor performance object
• Explain a System Monitor object instance
• Explain the functions of Performance Logs and Alerts
• Explain the purpose of establishing a baseline
• Explain the function of creating a counter log
• Explain the function of creating a trace log
• Explain the function of creating an alert
• Explain the purpose of using Performance console network counters
• Explain how a bottleneck can reduce the acceptable level of performance
• List and explain performance counters to be used when monitoring the processor subsystem
• List and explain performance counters to be used when monitoring memory performance
• List and explain performance counters to be used when monitoring disk performance
• List and explain performance counters to be used when monitoring network performance
• Explain the function of Network Monitor
• Explain the similarities and differences between Network Monitor included with Windows Server 2003 and the full version of Network Monitor included with Microsoft Systems Management Server (SMS)
• Discuss a scenario in which you could use promiscuous mode to capture network data
• Explain capture and display filters
• Explain why backing up data on a hard drive is an important administrative task
• List and explain the three elements of a network backup solution
• Explain the function of Automated System Recovery (ASR)
• List and explain the elements of creating a backup plan
• List and explain the three most common types of backups
• List and explain the basic functions that backup software should perform.
• Explain why performing practice restores is important
• Explain the purpose of a volume shadow copy
• Explain the function of Remote Assistance
• Explain the options for storing or sending invitations
• Explain how to secure Remote Assistance
• Explain the function of Remote Desktop
• Explain the function of Remote Desktop for Administration
• Determine whether a network communications problem is related to TCP/IP
• Explain why the TCP/IP protocol requires more configuration settings compared to other network protocols
• Compare TCP/IP to other protocols such as IPX/SPX and NetBEUI, including the advantages and disadvantages of each protocol
• Isolate TCP/IP problems by using other protocols to connect to other hosts
• Explain why using DHCP to configure IP addressing information can reduce misconfiguration errors
• Explain how the ipconfig utility can be used to troubleshoot IP configuration issues
• Explain why an incorrect subnet mask might disrupt network communication
• Explain why an incorrect default gateway setting would disrupt network communication with host computers on a different local subnet
• Explain why name resolution is a common communication with TCP/IP
• List and explain the two services used for name resolution
• Explain how the nslookup utility can be used to troubleshoot host name resolution
• Explain how the nbtstat utility can be used to troubleshoot NetBIOS name resolution
• List possible DHCP problems that can occur
• Explain Automatic Private IP Addressing (APIPA)
• Explain the reasons why a DHCP client might not be able to contact a DHCP server
• Explain the reasons why a DHCP client might receive the incorrect IP addressing information
• Explain the reasons why a DHCP client might receive the incorrect DHCP scope options
• List and explain the four methods that can be used to obtain IP addressing information
• Explain how DNS is used to resolve names for Active Directory and for Internet connectivity
• List and explain steps for troubleshooting client configuration problems
• List the conditions that can prevent DNS servers from fulfilling their function.
• Explain how a nonfunctioning DNS server can impact name resolution
• Explain how a misconfigured DNS server can impact name resolution
• Explain how a DNS server that cannot resolve outside names can impact name resolution
• Explain the function of DNS forwarding
• Explain the function of root hints
• View the Root Hints tab in the DNS server Properties dialog box
• Explain the function of DNS recursion
• Explain how DNS recursion can impact name resolution
• View the disable recursion setting on a DNS server
• Use TCP/IP tools to isolate a router problem
• Check an RRAS installation for configuration problems
• Explain how Windows Server 2003 TCP/IP tools can help to isolate network connectivity issues
• List and explain the steps that can be performed when using the ping utility to troubleshoot connectivity
• Troubleshoot static and dynamic routing problems
• Determine the location of an Internet access problem
• Understand client configure problems and router, NAT, and proxy server problems that can interrupt Internet access
• Discuss Windows Server 2003 tools used to troubleshoot IPSec connections
• List possible causes of IPSec policy mismatches
• Describe the functions of the IP Security Monitor and Resultant Set of Policy (RSoP) snap-ins

Planning, Implementing, and Maintaining a Server 2003 Active Directory Infrastructure

• Define directory service
• Describe the functions of Active Directory
• Explain how Active Directory provides for centralized resource access and authentication
• Explain how Active Directory provides a single point of security administration
• Explain how fault tolerance is created with Active Directory
• Describe and explain the replication process in Active Directory
• Explain how Active Directory facilitates searching for resources
• Explain the concept of publishing resources in Active Directory
• Explain the relationship between the schema and Active Directory
• Explain the relationship between an Active Directory object class and an Active Directory attribute
• Explain a parent/child relationship
• Explain how Organizational Units (OUs) can reflect the logical structure of Active Directory
• List eight objects that can reside inside an Organizational Unit
• Explain why you should try to not nest OUs too deeply
• Use a scenario to explain Group Policy inheritance
• Explain the relationship between domains and OUs
• Explain the relationship between a parent and a child domain
• Explain an Active Directory forest root domain
• Define an Active Directory tree
• Define an Active Directory forest
• List and explain the function of the four default directory partitions
• Explain a global catalog
• Define an Active Directory site
• Describe a scenario that has single and multiple Active Directory sites
• Explain the function of the Knowledge Consistency Checker (KCC)
• Explain the relationship between X.500 and Lightweight Directory Access Protocol (LDAP)
• Explain the function of Domain Name System (DNS) in Active Directory
• Discuss an example of the two types of names used to reference an Active Directory object
• Define a User Principal Name (UPN)
• List the Active Directory elements that are used when planning an Active Directory environment
• Explain what is meant by the logical structure of Active Directory
• Explain what is meant by the physical structure of Active Directory
• Explain the concept of object inheritance
• Explain the role of forest and domain functional levels in Active Directory
• Explain how increasing the forest and domain functional levels adds enhancements to Active Directory
• List and describe each of the domain functional levels
• List and describe each of the forest functional levels
• Explain transitive two-way trusts using parent and child domains
• Describe the purpose of a shortcut trust
• Describe the purpose of a one-way trust
• Describe the purpose of a cross-forest trust
• Compare and explain Kerberos and NTLM authentication protocols when creating trust relationships
• List and explain the administrative requirements that should be considered before installing Active Directory
• Discuss planning steps for sizing the Active Directory database
• List the pre-installation tasks that should be performed prior to installing Active Directory
• Explain the possible methods to start the Active Directory Installation wizard
• Explain a forest root domain
• List and explain the Flexible Single Master Operations (FSMO) roles
• Explain the Active Directory Installation Wizard pages
• List and explain the items to finalize, verify, or configure after Active Directory has been installed
• List and explain the two default Active Directory DNS application partitions
• Explain DNS aging and scavenging
• Explain the purpose and function of DNS SRV records
• List and explain two methods of verifying SRV records
• Explain the function and purpose of DNS reverse lookup zones
• Explain the benefits of adding a second domain controller to a domain
• Explain the relationship between the schema and Active Directory
• Explain the role of forest and domain functional levels in Active Directory
• Explain how increasing the forest and domain functional levels add enhancements to Active Directory
• Explain the purpose of trust relationships
• List and describe the four different types of trusts that can be created
• List and describe how a trust relationship can be verified
• Define and explain User Principal Names (UPN)
• Understand Active Directory sites
• Manage sites and site links
• Develop a site strategy
• Understand and configure site replication
• Understand intrasite replication
• Understand intersite replication
• Understand and configure a bridgehead server
• Understand replication protocols
• Understand and configure site link bridges
• Create a site
• Create a subnet
• Create a site link
• Create a list of bridgehead servers
• Force replication
• Install and use dcdiag
• Install and use repadmin
• Install and use replmon
• Understand the global catalog and its role in Active Directory
• Plan the placement of global catalog servers
• Add and remove global catalog servers
• Understand universal group caching
• Describe forest and domain FSMO roles
• Plan FSMO role placement
• Transfer and seize FSMO role assignments
• Describe local, domain, and built-in accounts
• Understand security and distribution groups and their purpose in Active Directory
• Understand, plan, and implement local, global, domain local, and universal groups
• Understand, plan, and implement group nesting
• Use scripting tools such as CSVDE, LDIFDE, and VBScript to modify, create, and delete multiple users and groups
• Implement account security using strong passwords
• Explain how smart cards are used to authenticate users
• Explain the security risks associated with being logged on as a member of the Administrators group
• Use the Run As program to perform administrative tasks
• Plan an organizational unit (OU) strategy
• Understand and describe the benefits of administrative delegation
• Create an organizational unit structure
• Delegate control of an organizational unit
• Move objects between organizational units

• Explain the function of Group Policy

• List the operating systems that can be configured via Group Policy
• List the managed settings which Group Policy can control
• Explain how Group Policy settings are applied to Active Directory objects
• Explain how Return on Investment (ROI) and Total Cost of Ownership (TCO) are used to evaluate a network environment
• List and explain the benefits of implementing Group Policy
• Explain the concept of a Group Policy Object (GPO)
• List and explain the two types of GPOs
• Explain local Group Policy Objects
• List and explain the characteristics of a local GPO
• Explain how nonlocal GPOs are created and linked in Active Directory
• List the options available for linking nonlocal GPOs in Active Directory
• List the two locations for storing nonlocal GPO settings
• Explain the function of the Group Policy Container Object
• List and explain the two sub containers of a Group Policy Container (GPC)
• Explain the function of the Group Policy Template (GPT)
• List and explain the subfolders and contents in the GPT structure
• List and explain the two nonlocal Group Policy objects that are created by default
• Explain the concept of inheritance when processing multiple GPOs
• List and explain the two subcategories of actual settings
• List and explain the three subnodes or extensions found in a Group Policy Object
• Explain the Windows Server 2003 .adm files
• List and explain the five administrative templates included with Windows Server 2003
• Explain how the administrative templates settings apply to the HKEY_CURRENT_USER and HKEY_LOCAL_MACHINE Registry hives
• List and explain the three types of administrative templates
• List and explain the methods used to view descriptions of policy settings
• List and explain the three different states of each policy setting
• Explain why Group Policy Objects cannot be linked to built-in containers
• Explain how policies affect the containers to which they are linked
• List the order that Group Policy Objects are processed
• Explain how multiple policies linked to a container are applied
• Explain how the highest priority GPO’s settings are applied first
• List and explain the two types of scripts that can run during startup
• List and explain the two types of scripts that can run during shutdown
• List the steps and describe the process that is taken to implement GPO settings for a computer and user
• Explain synchronous processing of Group Policy Objects and scripts
• Explain asynchronous processing of Group Policy Objects and scripts
• List and explain the exceptions for processing Group Policies
• Discuss a scenario used to demonstrate the No Override option
• Discuss a scenario used to demonstrate the Block Policy option
• Discuss a scenario used to demonstrate the Loopback option
• Understand and be able to apply security settings to users using Group Policy
• Understand and be able to apply security settings to computers using Group Policy
• Configure and apply account polices
• Configure and apply audit polices
• Configure User Rights Assignments
• Configure Event Log policies
• Understand and configure Restricted Groups
• Understand and configure System Services polices
• Understand and configure Registry and File System policies
• Understand and configure Wireless Network policies
• Understand and configure Public Key polices
• Understand and configure Certificate Autoenrollment
• Understand and configure Software Restriction policies
• Understand and configure Folder Redirection
• Understand and configure Offline Files
• Understand and Configure Disk Quotas
• Understand and configure Group Policy refresh intervals
• Manually refresh Group Policy using Gpupdate.exe
• Explain the Software Development Life Cycle (SDLC)
• List and explain the four phases of the software life cycle
• Explain the Windows Installer service
• Explain how Group Policy is used to deploy software
• Explain the relationship between Group Policy, the Windows Installer service, and MSI files
• Explain the function of MSI (Microsoft Installer) files
• Explain the function of MST (Microsoft Transform) files
• Explain how to create an MST file
• Explain the function of MSP (Installer patch files) files
• Explain why there is a need to repackage software for deployment
• Explain the function of a ZAP (down-level applications package) file
• List and explain the disadvantages of creating ZAP files
• Explain the function and properties of a software distribution point
• Explain how Group Policy Objects (GPOs) can be used to deploy software
• List and explain the methods used to deploy software
• Explain how using the User Configuration node to assign an application will present the software to a user
• Explain how using the Computer Configuration node to assign an application will present the software to a user
• Explain how using the User Configuration node to publish an application will make the software available to a user
• Explain the function of specifying software categories
• List and explain the options available to use a GPO to deploy software
• Explain the process of adding an MSI file to a GPO
• Explain the concept of software restriction policies and how they are used
• Explain the purpose in the Security Levels and Additional Rules subfolders
• List and explain the two basic strategies for enforcing restrictions
• Explain the function and purpose of the default security level
• Explain how software restriction policies depend on the rules defined
• Explain the function of the Additional Rules subfolder
• List the four software restriction policies rule types
• Explain how a hash rule is used to block or deny an executable from running
• Explain how a certificate rule is used to allow or disallow an application
• Explain how a path rule can be used to allow or disallow an application in a specific directory path
• Explain the four default path rules that are needed to allow the operating system to operate properly
• Explain how Internet zone rules apply to Windows Installer packages
• Explain how multiple rule types can be used to obtain a variety of security levels
• List the order of processing for rules
• Explain how conflicts are resolved when using multiple rules
• List the three specific properties that apply to allow policies
• Explain how Enforcement properties can be used to restrict software
• Explain software restriction policies Designated File Types
• Explain software restriction policies Trusted Publishers
• List and explain recommendations for planning and implementing software restriction policies
• Filter the scope of a GPO using permissions and Windows Management Instrumentation (WMI) filters
• Describe Group Policy Management Console, its features, and benefits
• Use Group Policy Management Console (GPMC) to manage GPOs
• Use Resultant Set of Polices (RSoP) and GPResult to determine and troubleshoot policy settings
• Use RSoP and GPMC to simulate group policy results
• Delegate control of a GPO
• Understand and implement group policy planning guidelines
• Define procedures used for Active Directory backup and restore
• Use the Backup and Restore Wizard to back up and restore the Active Directory database
• Understand and explain the primary, normal, and authoritative restore processes
• Explain the defragmentation process and understand the differences between an offline and an online defragmentation
• Implement guidelines and procedures for monitoring Active Directory
• Use System Monitor and Event Viewer to monitor Active Directory and File Replication Service  (FRS)
• Configure alerts using System Monitor
• Differentiate and choose the appropriate tools for diagnosing Active Directory problems
• Understand the difference between upgrading and migrating
• Understand the upgrade and migration paths
• Understand the single domain upgrade process from Windows NT 4.0 to Windows Server 2003
• Understand the multiple domain upgrade process from Windows NT 4.0 to Windows Server 2003
• Understand interforest migration
• Understand intraforest migration
• Understand the function of Active Directory Migration Tool (ADMT)
• Understand the function of ClonePrincipal
• Understand the function of Netdom
• Understand the function of movetree
• Understand the upgrade process from Windows 2000 to Windows Server 2003

Designing Security for a Microsoft Server 2003 Network Package

• Analyze existing security  policies and procedures
• Analyze the organizational requirements for securing data
• Analyze the security requirements of different types of data
• Analyze risks to security within the current IT administration structure and security practices
• Predict threats to your network from internal and external sources
• Design a process for responding to incidents
• Design segmented networks
• Design a process for recovering services
• Identify capabilities of the existing infrastructure
• Identify technology limitations
• Analyze interoperability constraints
• Design a certification authority (CA) hierarchy implementation
• Design enrollment and distribution processes
• Establish renewal, revocation and auditing processes
• Design security for CA servers
• Design certificate distribution
• Design forest and domain trust models
• Design security that meets interoperability requirements
• Establish account and password requirements for security
• Manage the risk of managing networks
• Design the administration of servers by using common administration tools
• Design security for Emergency Management Services (EMS)
• Design a Software Update Services (SUS) infrastructure
• Design Group Policy to deploy software updates
• Design a strategy for identifying computers that are not at the current patch level
• Specify the required protocols for a firewall configuration
• Design Internet Protocol (IP) filtering
• Design an Internet Protocol Security (IPSec) policy
• Secure a Domain Name System (DNS) implementation
• Design security for data transmission
• Design public and private wireless LANS
• Design 802.1x authentication for wireless networks
• Design user authentication for a Web site using certificates
• Design user authentication for a Web site using IIS authentication
• Design user authentication for a Web site using Remote Authentication Dial-In Usre Service (RADIUS) for IIS authentication
• Design security for Web sites that have different technical requirements by enabling only the minimum required services
• Design a monitoring strategy for IIS
• Design an IIS baseline that is based on business requirements
• Design a content management strategy for updating an IIS server
• Select protocols for virtual private network (VPN) access
• Design VPN connectivity
• Design demand-dial routing between internal networks
• Design an extranet infrastructure
• Design a strategy for cross-certification of Certificate Services
• Define a baseline security template for all systems
• Create a plan to modify baseline security templates according to role
• Create a delegation strategy
• Analyze auditing requirements
• Design the appropriate group strategy for accessing resources
• Design a permission structure for directory service objects
• Design a strategy for the encryption and decryption of files and folders
• Design a permission structure for files and folders
• Design security for a backup and recovery strategy
• Analyze auditing requirements
• Design a permission structure for registry objects
• Analyze auditing requirements
• Analyze authentication requirements
• Establish account and password security requirements
• Design remote access policies
• Design access to internal resources
• Design an authentication provider and accounting strategy for remote network access by using IAS
• Design a strategy for hardening client operating systems
• Design a strategy for restricting user access to operating system features

 

 

 

 

Enrollment Requirements

To be eligible for admission into Network Learning Institute potential students must be at least eighteen years of age or older on the first day of class, and meet or exceed at least one of the following guidelines:

1. Possess a high school diploma.
2. Possess the recognized equivalency of a high school diploma.
3. Score a satisfactory on an Ability-to-Benefit exam.

 

Course Prerequisites

1.  A minimal understanding of computers.
2. A minimal understanding of the Internet.

 

Needs Assessment

According to the Bureau of Labor Statistics, employment of computer support specialists and systems administrators is expected to increase much faster than the average.  Employment of computer support specialists and systems administrators is expected to increase by 18 percent from 2006 to 2016, which is much faster than the average for all occupations. In addition, this occupation is expected to add 155,000 jobs over the projection decade.

Employment of computer support specialists is expected to increase by 13 percent from 2006 to 2016, which is about as fast as the average for all occupations. Demand for these workers will result as organizations and individuals continue to adopt increasingly sophisticated technology. Job growth will continue to be driven by the ongoing expansion of the computer system design and related services industry, which is projected to remain one of the fastest-growing industries in the U.S. economy.

Job growth among computer support specialists reflects the rapid evolution of technology. As computers and software become more complex, support specialists will be needed to provide technical assistance to customers and other users. The adoption of new mobile technologies, such as the wireless Internet, will continue to create a need for these workers to familiarize and educate computer users. Consulting jobs for computer support specialists also should continue to increase as businesses seek help managing, upgrading, and customizing ever more complex computer systems.

Employment of network and computer systems administrators is expected to increase by 27 percent from 2006 to 2016, which is much faster than the average for all occupations. Computer networks have become an integral part of business, and demand for these workers will increase as firms continue to invest in new technologies. The wide use of electronic commerce and the increasing adoption of mobile technologies mean that more establishments will use the Internet to conduct business online. This growth translates into a need for systems administrators who can help organizations use technology to communicate with employees, clients, and consumers.

Related Occupations:
Computer Programmers
Computer Software Engineers
Computer Systems Analysts
Computer Scientists
Database Administrators

 

 

What's the next step?

Contact N.L.I. for a free consultation and evaluation appointment and one of our admissions specialist will be more than happy to assist you.